CVE-2023-20592

Published: Nov 14, 2023

Modified: Oct 11, 2024

PUBLISHED

Description

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.

Vendor	Product	Versions
AMD	1st Gen AMD EPYC™ Processors	affected `various`
AMD	2nd Gen AMD EPYC™ Processors	affected `various`
AMD	3rd Gen AMD EPYC™ Processors	affected `various`

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3005

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-20592

Description

Affected Products

References